From: Simon Ruderich Date: Sun, 13 Aug 2023 07:52:31 +0000 (+0200) Subject: vcs: gitconfig: don't execute arbitrary commands from embedded bare repositories X-Git-Url: https://ruderich.org/simon/gitweb/?a=commitdiff_plain;h=3138bd7b544741e53192553e530186133f6b5847;hp=7adece76ae1a6452248f2d2d26d1d5f21b0f38f6;p=config%2Fdotfiles.git vcs: gitconfig: don't execute arbitrary commands from embedded bare repositories --- diff --git a/vcs/gitconfig.in b/vcs/gitconfig.in index 7476a82..9efa884 100644 --- a/vcs/gitconfig.in +++ b/vcs/gitconfig.in @@ -254,6 +254,11 @@ # Sort tags as version numbers sort = version:refname +[safe] + # Ignore embedded bare repositories to prevent executing arbitrary + # commands from untrusted repositories + bareRepository = explicit + # NON-GIT SETTINGS